Search results

[…] Privacy and Security Leadership, Accessed October. 5, 2022, https://rriconedpss.org. 30 Eastern Suffolk BOCES, Education Law 2-D Project Management Tool , (n.d.), Accessed November 1, 2021, https://www.esboces.org/cms/lib/ NY01914091/Centricity/Domain/440/RIC% 20One%202020-2021%20Data%20Security %2022.pdf . 31 RIC One, About RIC One, Accessed October 14, 2022, https://www.ricone.org/about/ . 32 RIC One, About RIC One, Accessed October 14, 2022, https://riconedpss.org/about . […]

[…] Commissioner (May 31, 2023), https://www. esafety.gov.au/sites/default/files/2023-05/eSafety_summary_Relevant_electronic_service_providers.pdf. 4 Online Safety (Relevant Electronic Services—Class 1A and Class 1B Material) Industry Standard 2024, eSafety Commissioner (Nov. 20, 2023), https://www.esafety.gov.au/sites/default/files/2023-11/Draft%20Online%20 Safety%20%28Relevant%20Electronic%20Services%20-%20Class%201A%20and%20Class%201B%20 Material%29%20Industry%20Standard% 202024%20_0.pdf. 5 See, e.g., Subject Matter Expert Working Group Reports , U.S. Department of Justice, https://www.justice.gov/ d9/2023-06/sme_wg_reports_combined_2.pdf. 6 eSafety Commissioner makes final decision on world-first industry codes […]

[…] (CJEU) Case CJEU1: Joined Cases WM (C -37/20), Sovim SA (C -601/20), Grand Chamber, November 22, 2022, ECLI:EU:C:2022:912. Austria (AT) Case AT-CR-1: Austrian Supreme Court, Case: 6Ob77/ 20x of November 25, 2020, available at https://www.ris.bka.gv.at/Dokument.wxe?Abfrage=Justiz&Dokumentnummer=JJT_20201125_ OGH0002_0060OB00077_20X0000_000. Belgium (BE) Case BE-CR-1: Cour d’ appel Bruxelles, Case: 2020/AR/1333 of January 27, 2021, available at https://www.gegevensbeschermingsautoriteit.be/publications/arrest-van-27-januari-202 1-van- […]

[…] particular type or class of physical hardware or equipment, the 14 Commission may conduct a rulemaking pursuant to section 553 of title 5, United S tates 15 Code, to resolve the confusion. 16 (15) Employee data .— The term “employee data” means covered data that is collected 17 and processed by a covered entity […]

[…] Both New York and California have passed laws prohibiting online services from providing algorithmically curated feeds to minors without parental consent; South Carolina and Nebraska’s age-appropriate design code laws require services to offer an opt-out of personalized recommender systems. The full report, including an appendix tracking a sample of enacted and proposed youth online […]

[…] Something New on Privacy (Future of Privacy Forum, June 2025), https://fpf.org/blog/the-old-line-state-does-something- new-on-privacy/; California Office of the Attorney General, California Consumer Privacy Act (CCPA), https://oag. ca.gov/privacy/ccpa and Cal. Code Regs. tit. 11, § 7001 (Westlaw), https://govt.westlaw.com/calregs/Document/ I7C5D69409E0F11F09C6BF97E55B516E3 31 Regulation (EU) 2016/679 of the European Parliament and of the Council, 2016 O.J. (L 119) 1, https://eur-lex.europa.eu/ […]

[…] for compliance teams.  Default safety features: The law also requires certain minor-specific default safety features seen in other recent frameworks, such as South Carolina’s Age Appropriate Design Code (AADC), including preventing unconnected users from viewing or contacting minor accounts and restricting minors from viewing “sensitive content.” Notably, SB 5 broadly defines “sensitive content” to […]

[…] (other than an entrance to an area restricted to authorized employees) that alerts consumers that FRT is in use and provides a conspicuous hyperlink or quick response code that directs consumers to the controller’s FRT policy. The FRT policy that a controller maintains must include contact information for the AG’s office and “may” disclose […]

[…] 17 They could also infer the maximum price a customer is willing to pay and charge them that amount, based on information such as spending habits, ZIP code , or the device used to make the purchase. 18 Distinguishing between legitimate and illegitimate uses of data is a major challenge fo r consumers, who […]

[…] and understand the student privacy requirements. (For more on training, see the section below on Continued Privacy Training). ADMINISTRATIVE RULE (RULE R277-487-3) Rule 277-487 in Utah’s Administrative Code mandates that each LEA must provide the State Board with the LEA’s data governance plan, and the name and contact information of the LEA’s designated data […]